Method and System for Securing a Home Domain from External Threats Received by a Gateway

1. A method, comprising: in a broadband gateway that enables communication with a plurality of devices, wherein the broadband gateway is operable to handle at least one physical layer connection to at least one corresponding network access service provider: storing an application received through the at least one corresponding network access service provider in a first portion of a memory; storing, in a second portion of memory that does not overlap the first portion of the memory, raw data used during video processing that is performed in the broadband gateway; and executing the application in a processor after disabling access by the application to the second portion of the memory, the access being disabled in response to a status of a usage of the raw data.

2. The method of claim 1 , wherein the at least one physical layer connection comprises a plurality of physical layer connections and the at least one corresponding network access service provider comprises a plurality of corresponding network access service providers, and wherein each of the plurality of physical layer connections corresponds to a respective one of the plurality of corresponding access service providers.

3. The method of claim 1 , comprising enabling access to the second portion of the memory by the broadband gateway after execution of the application.

4. The method of claim 1 , comprising executing the application in a virtual machine operating on the processor.

5. The method of claim 1 , comprising executing an agent on the broadband gateway, the agent enabling one or more of generating a request for the content and storing the received content in the first portion of the memory.

6. The method of claim 1 , comprising verifying that the application is secure for one or both of utilization in the broadband gateway and distribution from the broadband gateway to one or more of the plurality of devices.

7. The method of claim 6 , comprising deleting the application when verification fails.

8. The method of claim 6 , wherein the verification is based on historical instruction information associated with the user.

9. A system, comprising: one or more processors and/or circuits for use in a broadband gateway that enables communication with a plurality of devices, wherein the broadband gateway is operable to handle a plurality of physical layer connections to a corresponding plurality of network access service providers, wherein each of the plurality of physical layer connections corresponds to a respective one of the plurality of corresponding access service providers, the broadband gateway comprising one or more processors and/or circuits operable to: store an application received through a first one of the network access service providers in a first secure portion of a memory; store content received through a second one of the network access service providers in a second secure portion of a memory distinct from the first secure portion; and execute the application after disabling access by the application to a second portion of the memory that does not overlap the first portion of the memory, the access being disabled in response to a status of a usage of the content.

10. The system of claim 9 , wherein the one or more processors and/or circuits are operable to enable access to the second portion of the memory by the broadband gateway after execution of the application.

11. The system of claim 9 , wherein the one or more processors and/or circuits are operable to execute an agent on the broadband gateway, the agent enabling one or more of generating a request for the content and storing the received content in the first portion of the memory.

12. The system of claim 9 , wherein the one or more processors and/or circuits are operable to verify that the application is secure for one or both of utilization in the broadband gateway and distribution from the broadband gateway to one or more of the plurality of devices.

13. The system of claim 12 , wherein the one or more processors and/or circuits are operable to delete the application when verification fails.

14. The method of claim 1 , wherein the video processing comprises transcoding, decrypting, or a combination thereof.

15. The method of claim 1 , comprising: determining whether the disabling was successful; and in response to the determination that the disabling was not successful, preventing execution of the application.

16. A method, comprising: in a broadband gateway that enables communication with a plurality of devices, wherein the broadband gateway is operable to handle at least one physical layer connection to at least one corresponding network access service provider: receiving an application through the at least one corresponding network access service provider; storing the received application in a first portion of a memory of the broadband gateway; storing a user profile in a second portion of memory that does not overlap the first portion of the memory; executing an agent that downloads content to the second portion of memory in accordance with the user profile; and executing the application in a processor after disabling access by the application to the second portion of the memory, the access being disabled in response to a status of a usage of the content.

17. The method of claim 16 , wherein the agent performs one or more tasks in accordance with the user profile, wherein the one or more tasks include searching for the content, purchasing of the content, and verifying the content.

18. The method of claim 17 , comprising executing the agent on the broadband gateway, the agent enabling one or more of generating a request for the content and storing the received content in the memory.

19. The method of claim 16 , wherein the agent downloads a content directory from the network access service provider and stores the downloaded content directory in the second portion of the memory.